EIP-2026-118877

PRE-CVE

Microsoft Windows FTP Server 1.4 - Authentication Bypass

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118877. PoCs published by chap0.

AI-analyzed exploit summary This Perl script demonstrates an authentication bypass vulnerability in Windows FTP Server by DWG v1.4, allowing an attacker to connect with arbitrary credentials and create directories. It establishes a TCP connection to the FTP server and sends crafted USER and PASS commands followed by an MKD command.

Description

Microsoft Windows FTP Server 1.4 - Authentication Bypass

Exploits (1)

exploitdb WORKING POC VERIFIED

by chap0 · perlremotewindows

https://www.exploit-db.com/exploits/12119

View Code ZIP pw:eip

This Perl script demonstrates an authentication bypass vulnerability in Windows FTP Server by DWG v1.4, allowing an attacker to connect with arbitrary credentials and create directories. It establishes a TCP connection to the FTP server and sends crafted USER and PASS commands followed by an MKD command.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Windows FTP Server by DWG v1.4

No auth needed

Prerequisites: Network access to the target FTP server · FTP server running Windows FTP Server by DWG v1.4

MITRE ATT&CK

T1110 - Brute Force T1078 - Valid Accounts

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026